$ rpki-client -vvf rpki-rsync.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa File: 3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: 4eLS0uFtvc6ZLIswt7CJrqR+R0zoO9oGHIp+2JRkWks= Subject key identifier: 98:6D:96:CC:32:A2:15:7E:23:F6:60:5E:A3:8A:2D:F6:0A:4C:5A:54 Certificate issuer: /CN=2977BC17912D681A78EBCC27EDFF03B1E1A3413D Certificate serial: 038AA568E5EF0988E6DCA5C2710654B9A937811A Authority key identifier: 29:77:BC:17:91:2D:68:1A:78:EB:CC:27:ED:FF:03:B1:E1:A3:41:3D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2977BC17912D681A78EBCC27EDFF03B1E1A3413D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa Signing time: Sun 03 May 2026 02:57:13 +0000 ROA not before: Sun 03 May 2026 02:52:13 +0000 ROA not after: Sun 02 May 2027 02:57:13 +0000 asID: 9341 IP address blocks: 103.137.188.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/2977BC17912D681A78EBCC27EDFF03B1E1A3413D.crl rsync://rpki-rsync.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/2977BC17912D681A78EBCC27EDFF03B1E1A3413D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2977BC17912D681A78EBCC27EDFF03B1E1A3413D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 10:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:8a:a5:68:e5:ef:09:88:e6:dc:a5:c2:71:06:54:b9:a9:37:81:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2977BC17912D681A78EBCC27EDFF03B1E1A3413D Validity Not Before: May 3 02:52:13 2026 GMT Not After : May 2 02:57:13 2027 GMT Subject: CN=986D96CC32A2157E23F6605EA38A2DF60A4C5A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:22:0a:08:20:3e:50:c4:0c:2b:fb:b4:74:49: 13:29:59:18:3c:72:84:0e:29:95:cf:8b:ab:b2:1b: a9:b4:9d:42:33:ff:1d:08:e9:ea:ae:0d:63:38:7b: 10:e2:07:bc:7b:cd:bd:ab:ad:70:90:24:3e:ac:4d: 58:ba:d2:f8:bb:5d:c9:9e:3a:8b:a6:82:59:e3:f1: 8a:c5:d5:5c:5f:23:3d:0b:97:65:ba:04:47:25:2e: 98:df:40:41:49:d4:2a:44:a2:3b:08:a2:36:78:f6: f9:35:25:1b:29:fd:ee:bc:cf:a3:3b:5a:9a:7c:0a: a1:20:2d:10:ec:40:0a:6f:31:fd:14:c5:c0:38:98: 41:98:16:15:45:47:08:b9:b0:d6:31:83:02:94:77: d1:41:53:25:d9:f7:2d:29:23:4c:ac:a9:55:5a:b6: dc:de:c0:5b:af:d4:13:40:2d:14:81:67:d0:4f:7c: 98:c1:59:f6:86:b7:f9:79:cf:2f:4e:da:f0:33:34: 80:a9:6c:93:c5:2e:b4:e8:7e:bd:33:e7:c2:be:ef: db:87:05:e5:38:1c:39:9a:61:c1:20:e1:71:b6:11: 85:f1:9b:91:68:8e:1c:c7:c6:f5:20:69:20:db:5c: 20:cd:21:a5:ed:a5:b5:99:04:74:a2:60:96:04:b6: 61:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6D:96:CC:32:A2:15:7E:23:F6:60:5E:A3:8A:2D:F6:0A:4C:5A:54 X509v3 Authority Key Identifier: keyid:29:77:BC:17:91:2D:68:1A:78:EB:CC:27:ED:FF:03:B1:E1:A3:41:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/2977BC17912D681A78EBCC27EDFF03B1E1A3413D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2977BC17912D681A78EBCC27EDFF03B1E1A3413D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.188.0/23 Signature Algorithm: sha256WithRSAEncryption 71:12:eb:40:46:2e:c2:98:3f:28:6b:0a:9c:7a:5d:52:8b:8b: b2:35:8f:b4:7b:15:c5:76:40:55:76:1e:a6:66:6a:8a:b5:c3: 7f:e5:35:84:9a:d8:c0:1e:43:4b:f8:06:8c:61:95:e2:e4:2f: 70:9e:db:51:e6:ef:ab:70:d7:e6:32:d0:a9:c9:e8:86:64:87: 35:7a:21:9e:d6:72:24:36:e5:bd:d0:18:a4:c0:67:90:f2:ea: 4b:98:78:87:d7:78:c7:aa:d0:47:4b:53:63:f4:bd:89:7e:24: 93:2c:0b:67:84:f7:57:35:61:19:a8:27:14:63:96:33:0e:6a: a3:79:5b:cb:b0:73:ce:a7:0f:7f:d1:c1:04:ac:13:8b:d2:e1: 26:e9:51:ce:00:c5:45:f9:bc:89:11:4e:8a:51:f6:9d:e2:62: 23:7e:ef:65:d6:a1:4b:a6:a6:43:e8:df:97:7c:a6:55:76:31: 65:db:5a:9a:f1:00:7f:a6:0d:d7:f1:88:3c:07:25:8d:69:fe: 8b:b5:92:a3:6c:f5:fc:a8:66:0f:d1:40:a8:a1:61:4b:f8:7f: b0:3d:6d:71:0c:31:6d:15:fb:ee:9c:d3:01:57:34:18:0b:58: de:63:76:16:16:4e:64:79:9c:76:38:35:a0:c0:ee:00:ca:d9: 35:01:26:01 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA4qlaOXvCYjm3KXCcQZUuak3gRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3N0JDMTc5MTJENjgxQTc4RUJDQzI3RURGRjAzQjFF MUEzNDEzRDAeFw0yNjA1MDMwMjUyMTNaFw0yNzA1MDIwMjU3MTNaMDMxMTAvBgNV BAMTKDk4NkQ5NkNDMzJBMjE1N0UyM0Y2NjA1RUEzOEEyREY2MEE0QzVBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcIgoIID5QxAwr+7R0SRMpWRg8 coQOKZXPi6uyG6m0nUIz/x0I6equDWM4exDiB7x7zb2rrXCQJD6sTVi60vi7Xcme Ooumglnj8YrF1VxfIz0Ll2W6BEclLpjfQEFJ1CpEojsIojZ49vk1JRsp/e68z6M7 Wpp8CqEgLRDsQApvMf0UxcA4mEGYFhVFRwi5sNYxgwKUd9FBUyXZ9y0pI0ysqVVa ttzewFuv1BNALRSBZ9BPfJjBWfaGt/l5zy9O2vAzNICpbJPFLrTofr0z58K+79uH BeU4HDmaYcEg4XG2EYXxm5FojhzHxvUgaSDbXCDNIaXtpbWZBHSiYJYEtmGtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmG2WzDKiFX4j9mBeo4ot9gpMWlQwHwYDVR0j BBgwFoAUKXe8F5EtaBp468wn7f8DseGjQT0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTZjMTI3MDMtZjFmNy00M2M5LWEyMjAtOTJlZGQ4NmVmZTVlLzAvMjk3N0JDMTc5 MTJENjgxQTc4RUJDQzI3RURGRjAzQjFFMUEzNDEzRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOTc3QkMxNzkxMkQ2ODFBNzhFQkNDMjdFREZGMDNCMUUxQTM0 MTNELmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2E2YzEyNzAzLWYxZjctNDNjOS1h MjIwLTkyZWRkODZlZmU1ZS8wLzMxMzAzMzJlMzEzMzM3MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeJvDANBgkqhkiG 9w0BAQsFAAOCAQEAcRLrQEYuwpg/KGsKnHpdUouLsjWPtHsVxXZAVXYepmZqirXD f+U1hJrYwB5DS/gGjGGV4uQvcJ7bUebvq3DX5jLQqcnohmSHNXohntZyJDblvdAY pMBnkPLqS5h4h9d4x6rQR0tTY/S9iX4kkywLZ4T3VzVhGagnFGOWMw5qo3lby7Bz zqcPf9HBBKwTi9LhJulRzgDFRfm8iRFOilH2neJiI37vZdahS6amQ+jfl3ymVXYx ZdtamvEAf6YN1/GIPAcljWn+i7WSo2z1/KhmD9FAqKFhS/h/sD1tcQwxbRX77pzT AVc0GAtY3mN2FhZOZHmcdjg1oMDuAMrZNQEmAQ== -----END CERTIFICATE-----Generated at Tue May 5 13:31:37 2026 by rpki-client